Lucene search

Ms415 Firmware Security Vulnerabilities

cve

CVE-2023-40239

Certain Lexmark devices (such as CS310) before 2023-08-25 allow XXE attacks, leading to information disclosure. The fixed firmware version is LW80..P246, i.e., '' indicates that the full version specification varies across product model family, but firmware level P246 (or higher) is required to...

7.5CVSS

7.3AI Score

0.001EPSS

2023-09-01 11:15 AM

cve

CVE-2021-44734

Embedded web server input sanitization vulnerability in Lexmark devices through 2021-12-07, which can which can lead to remote code execution on the...

9.8CVSS

9.8AI Score

0.018EPSS

2022-01-20 05:15 PM

cve

CVE-2021-44737

PJL directory traversal vulnerability in Lexmark devices through 2021-12-07 that can be leveraged to overwrite internal configuration...

8.8CVSS

8.6AI Score

0.002EPSS

2022-01-20 05:15 PM

cve

CVE-2021-44738

Buffer overflow vulnerability has been identified in Lexmark devices through 2021-12-07 in postscript...

9.8CVSS

9.5AI Score

0.044EPSS

2022-01-20 04:15 PM

cve

CVE-2020-10094

A cross-site scripting (XSS) vulnerability in Lexmark CS31x before LW74.VYL.P273; CS41x before LW74.VY2.P273; CS51x before LW74.VY4.P273; CX310 before LW74.GM2.P273; CX410 & XC2130 before LW74.GM4.P273; CX510 & XC2132 before LW74.GM7.P273; MS310, MS312, MS317 before LW74.PRL.P273; MS410, M1140...

5.4CVSS

5.3AI Score

0.001EPSS

2020-04-28 02:15 PM

cve

CVE-2020-10093

A cross-site scripting (XSS) vulnerability in Lexmark Pro910 series inkjet and other discontinued...

5.4CVSS

5.3AI Score

0.001EPSS

2020-04-28 02:15 PM

cve

CVE-2019-19772

Various Lexmark products have reflected XSS in the embedded web server used in older generation Lexmark devices. Affected products are available in...

5.4CVSS

5.3AI Score

0.001EPSS

2020-03-06 10:15 PM

120

cve

CVE-2019-19773

Various Lexmark products have stored XSS in the embedded web server used in older generation Lexmark devices. Affected products are available in...

5.4CVSS

5.2AI Score

0.001EPSS

2020-03-06 10:15 PM

126

cve

CVE-2019-18791

Lexmark printer MS812 and multiple older generation Lexmark devices have a stored XSS vulnerability in the embedded web server. The vulnerability can be exploited to expose session credentials and other information via the users web...

5.4CVSS

5.2AI Score

0.001EPSS

2020-02-13 04:15 PM

cve

CVE-2019-9931

Various Lexmark printers contain a denial of service vulnerability in the SNMP service that can be exploited to crash the...

7.5CVSS

7.3AI Score

0.001EPSS

2019-08-28 10:15 PM

cve

CVE-2019-9930

Various Lexmark products have an Integer...

9.8CVSS

9.4AI Score

0.002EPSS

2019-08-28 10:15 PM

cve

CVE-2019-9932

Various Lexmark products have a Buffer Overflow (issue 2 of...

9.8CVSS

9.4AI Score

0.003EPSS

2019-08-28 10:15 PM

cve

CVE-2019-9933

Various Lexmark products have a Buffer Overflow (issue 3 of...

9.8CVSS

9.4AI Score

0.003EPSS

2019-08-28 10:15 PM

cve

CVE-2019-10057

Various Lexmark products have...

6.5CVSS

6.5AI Score

0.001EPSS

2019-08-28 10:15 PM

cve

CVE-2019-10059

The legacy finger service (TCP port 79) is enabled by default on various older Lexmark...

5.3CVSS

5.3AI Score

0.001EPSS

2019-08-28 10:15 PM

100

cve

CVE-2019-9935

Various Lexmark products have Incorrect Access Control (issue 2 of...

5.3CVSS

5.3AI Score

0.001EPSS

2019-08-28 04:15 PM

cve

CVE-2019-9934

Various Lexmark products have Incorrect Access Control (issue 1 of...

5.3CVSS

5.3AI Score

0.001EPSS

2019-08-28 04:15 PM

cve

CVE-2019-10058

Various Lexmark products have Incorrect Access...

9.1CVSS

9.2AI Score

0.002EPSS

2019-08-28 04:15 PM